Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,614 advisories

Loading
A vulnerability, which was classified as critical, has been found in D-Link DI-7300G+ 19.12.25A1.... Moderate Unreviewed
CVE-2025-6898 was published Jun 30, 2025
Unauthenticated users on an adjacent network with the Sight Bulb Pro can run shell commands as... Moderate Unreviewed
CVE-2025-6522 was published Jun 27, 2025
Improper Neutralization of Special Elements in the Netflow directory field may allow OS command... High Unreviewed
CVE-2025-5306 was published Jun 27, 2025
A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been classified as critical.... Moderate Unreviewed
CVE-2025-6618 was published Jun 26, 2025
A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been declared as critical.... Moderate Unreviewed
CVE-2025-6619 was published Jun 26, 2025
A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been rated as critical. Affected... Moderate Unreviewed
CVE-2025-6620 was published Jun 26, 2025
A vulnerability classified as critical has been found in TOTOLINK CA300-PoE 6.2c.884. This... Moderate Unreviewed
CVE-2025-6621 was published Jun 26, 2025
A vulnerability was found in TOTOLINK A3002R 1.1.1-B20200824.0128. It has been classified as... Moderate Unreviewed
CVE-2025-6485 was published Jun 22, 2025
A vulnerability classified as critical has been found in TOTOLINK N150RT 3.4.0-B20190525. This... Moderate Unreviewed
CVE-2025-6299 was published Jun 20, 2025
The Versa Director SD-WAN orchestration platform includes functionality to initiate SSH sessions... Moderate Unreviewed
CVE-2025-23170 was published Jun 19, 2025
A vulnerability, which was classified as critical, was found in Wifi-soft UniBox Controller up to... High Unreviewed
CVE-2025-6104 was published Jun 16, 2025
A vulnerability, which was classified as critical, has been found in Wifi-soft UniBox Controller... High Unreviewed
CVE-2025-6103 was published Jun 16, 2025
A vulnerability classified as critical was found in Wifi-soft UniBox Controller up to 20250506.... High Unreviewed
CVE-2025-6102 was published Jun 16, 2025
Blink routers BL-WR9000 V2.4.9 , BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 v1.0.5 , BL-LTE300 v1.2.3, BL... Critical Unreviewed
CVE-2025-45988 was published Jun 13, 2025
Blink routers BL-WR9000 V2.4.9, BL-AC1900 V1.0.2, BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 V1.0.5, BL... Critical Unreviewed
CVE-2025-45984 was published Jun 13, 2025
Blink routers BL-WR9000 V2.4.9 , BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 v1.0.5 , BL-LTE300 v1.2.3, BL... Critical Unreviewed
CVE-2025-45986 was published Jun 13, 2025
Blink routers BL-WR9000 V2.4.9 , BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 v1.0.5 , BL-LTE300 v1.2.3, BL... Critical Unreviewed
CVE-2025-45985 was published Jun 13, 2025
Blink routers BL-WR9000 V2.4.9 , BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 v1.0.5 , BL-LTE300 v1.2.3, BL... Critical Unreviewed
CVE-2025-45987 was published Jun 13, 2025
Improper neutralization of special elements used in a command ('command injection') in Visual... High Unreviewed
CVE-2025-47959 was published Jun 13, 2025
A command injection vulnerability in Palo Alto Networks PAN-OS® enables an authenticated... High Unreviewed
CVE-2025-4231 was published Jun 13, 2025
Ai command injection in M365 Copilot allows an unauthorized attacker to disclose information over... Critical Unreviewed
CVE-2025-32711 was published Jun 11, 2025
'.../...//' in Microsoft Office Outlook allows an authorized attacker to execute code locally. High Unreviewed
CVE-2025-47176 was published Jun 10, 2025
Improper Neutralization of Special Elements in the chromium_path variable may allow OS command... High Unreviewed
CVE-2025-4678 was published Jun 10, 2025
Improper Neutralization of Special Elements in the backup name field may allow OS command... High Unreviewed
CVE-2025-4653 was published Jun 10, 2025
A vulnerability, which was classified as critical, has been found in Zend.To up to 6.10-6 Beta.... Moderate Unreviewed
CVE-2025-5952 was published Jun 10, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database